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WHAT IS CLAIMED IS: 



1. In aji electronic mail (e-mail) system, a method for sending an e-mail 
essage using a securfed connection that employs encryption, the method comprising: 
receiving at a message transfer agent (MTA) a request from a client for 
establishing a secured connection with the MTA for sending an e-mail message; 

attempting to authenticate the client, through use of a certificate; 
if the client cannot be authenticated, terminating the method without 
establishing the secured connection and without sending the e-mail message; 

if the die it can be authenticated, establishing the secured connection between 
the client and the MTA; 

determining whether the encryption employed for the secured connection 
meets a predefined minimum encryption strength; 

if the encryption employed does not meet the predefined minimum encryption 
strength, terminating the secured connection without sending the e-mail message, whereupon 
the method terminates; ar d 

if the encr option employed does meet the predefined minimum encryption 
strength, sending the e-mail message. 



2. The method 
comprises a particular key 



3. The met 



of claim 1, wherein said minimum encryption strength 
length of a symmetric cipher used for encryption. 



lod of claim 1, wherein said step of terminating the method 



without establishing the secured connection includes: 
returning a tlmporary error reply code. 



4. The method of claim 1, wherein said step of terminating the method 
without establishing the secured connection includes: 
returning a pe] manent error reply code. 



5. The method of claim 1, wherein the e-mail message is returned to an 
original sender for the niessage if the client cannot be authenticated. 

6. The method of claim 1, wherein the e-mail message is queued for future 
sending if the client cannot be authenticated. 

7. The method of claim 1, wherein said step of determining whether the 
encryption employed for the secured connection meets a predefined minimum encryption 
strength employs SASL (Simple Authentication and Security Layer) protocol. 



8. The method! of claim 1, wherein said client is remote from said e-mail 



system. 



9. The method ©f claim 1, wherein said client includes a Mail User Agent. 

10. The method pf claim 10, wherein the Mail User Agent communicates 
with the e-mail system via SMTP (Simple Mail Transport Protocol). 



11. The method qf claim 1, wherein said MTA comprises a 
Sendmail-compatible Message Transfer Agent (MTA) and wherein said method is controlled, 



at least in part, by a configuration 



lie for the Sendmail-compatible MTA. 



12. The method of 



key. 



claim 1, wherein said certificate comprises a signed public 



13. The method of claim 1, wherein said certificate comprises an X.509 

certificate. 
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14. The method of claim 1, wherein said step of terminating the method 
without establishing the secured connection includes: 

rejecting at least some subsequent SMTP commands received from the client. 

15. The method of claim 14, wherein the rejected SMTP commands are 
rejected with an error. 




In an electronic mail (e-mail) system, a method for sending an e-mail 
message using a secured connection that employs encryption, the method comprising: 

attempting at a first message transfer agent (MTA) to establish a secured 
connection with a second MTA for sending an e-mail message; 

attempting to authenticate the second MTA, through use of a certificate; 
if the second MTA cannot be authenticated, terminating the method without 
establishing the secured connection and without sending the e-mail message; 

if the second MT\ can be authenticated, establishing the secured connection 
between the first MTA and the second MTA; 

determining whether the encryption employed for the secured connection 
meets a predefined minimum encryption strength; 

if the encryption e nployed does not meet the predefined minimum encryption 
strength, terminating the secured ;onnection without sending the e-mail message, whereupon 
the method terminates; and 

if the encryption employed does meet the predefined minimum encryption 
strength, sending the e-mail messa ge. 



17. The method o 
comprises a particular key length 



claim 16, wherein said minimum encryption strength 
of a symmetric cipher used for encryption. 



18. The method of claim 16, wherein said step of terminating the method 
without establishing the secured connection includes: 
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returning a ten: porary error reply code. 



19. Themethcjd 
without establishing the 
returning a 



of claim 16, wherein said step of terminating the method 
secuijed connection includes: 
pertnanent error reply code. 



20. The method of claim 16, wherein the e-mail message is returned to an 
original sender for the message* if the second MTA cannot be authenticated. 



life 
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21. The method of claim 16, wherein the e-mail message is queued for future 
sending if the second MTA canr.ot be authenticated. 

22. The method of claim 16, wherein said step of determining whether the 
encryption employed for the sect red connection meets a predefined minimum encryption 
strength employs SASL (Simple Authentication and Security Layer) protocol. 



e-mail system. 



23. The method cf claim 16, wherein said second MTA is remote from said 



24. The method of claim 16, wherein said first MTA originally received the 



e-mail message from a client that 



connects to the e-mail system using a Mail User Agent. 



25. The method of claim 24, wherein the Mail User Agent communicates 



with the e-mail system via SMTP 



26. The method o 
Sendmail-compatible Message Transfer 
at least in part, by a configuration 



(Simple Mail Transport Protocol). 



claim 16, wherein said first MTA comprises a 

Agent (MTA) and wherein said method is controlled, 
file for the Sendmail-compatible MTA. 
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27. The met! od of claim 16, wherein said certificate comprises a signed 



public key. 



5 certificate. 
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28. The met! od of claim 16, wherein said certificate comprises an X.509 



1A 
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29. The method of claim 16, wherein the first MTA communicates with the 
second MTA using SMTP (Simple Mail Transport Protocol). 



30. The method of claim 29, wherein said step of terminating the method 
without establishing the secured connection includes: 
issuing an SMT ? QUIT command. 



An electronic mail (e-mail) system comprising: 
a message transfer agent (MTA) available for a client to connect to; 
program logic for authenticating the client, through use of a certificate; 
program logic for establishing a secured connection between the client and the 
MTA in instances where the client can be authenticated; 

program logic for testing encryption strength of the secured connection; and 
program logic for terminating the secured connection in instances where the 
secured connection has inadequate encryption strength. 



32. The system 
(MUA) software. 



of claim 31, wherein the client includes Mail User Agent 



33. The system 
the MTA via SMTP (Simple 



of claim 31, wherein the e-mail message is communicated to 
Mail Transport Protocol). 
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34. The sysi em of claim 31, wherein said certificate comprises a signed public 



key. 



certificate. 



35. The system of claim 31, wherein said certificate comprises an X.509 



ill 



